It was discovered that slapd contained an off-by-one error. An
authenticated attacker could potentially exploit this by sending a
crafted crafted LDIF entry containing an empty postalAddress.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 11.10 | noarch | slapd | < 2.4.25-1.1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | ldap-utils | < 2.4.25-1.1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | libldap-2.4-2 | < 2.4.25-1.1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | libldap-2.4-2-dbg | < 2.4.25-1.1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | libldap2-dev | < 2.4.25-1.1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.10 | noarch | slapd-dbg | < 2.4.25-1.1ubuntu4.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | slapd | < 2.4.23-6ubuntu6.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | ldap-utils | < 2.4.23-6ubuntu6.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | libldap-2.4-2 | < 2.4.23-6ubuntu6.1 | UNKNOWN |
Ubuntu | 11.04 | noarch | libldap-2.4-2-dbg | < 2.4.23-6ubuntu6.1 | UNKNOWN |